19 matches found
CVE-2026-44274
Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...
Astra Linux – Vulnerability in libarchive
An improper link resolution flaw during the extraction of an archive can cause changes to the access control list ACL of the target of the link. An attacker may provide a malicious archive to a victim user, triggering this flaw when the victim tries to extract the archive. A local attacker may...
Dell iDRAC Tools < 11.4.1.0 Improper Link Resolution (DSA-2026-239)
According to its self-reported version, the Dell iDRAC Tools installation on the remote host is affected by a link following vulnerability. Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access 'Link Following' vulnerability. A low privileged attack...
CVE-2026-41116
Dell Inventory Collector Client, versions prior to 13.8.0, contain an Improper Link Resolution Before File Access 'Link Following' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Arbitrary File Write...
CVE-2026-41116
Dell Inventory Collector Client, versions prior to 13.8.0, contain an Improper Link Resolution Before File Access 'Link Following' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Arbitrary File Write...
VulnCheck KEV: CVE-2026-41091
Improper link resolution before file access 'link following' in Microsoft Defender allows an authorized attacker to elevate privileges locally...
CVE-2026-27748
Avira Internet Security contains an improper link resolution vulnerability in the Software Updater component. During the update process, a privileged service running as SYSTEM deletes a file under C:\ProgramData without validating whether the path resolves through a symbolic link or reparse point...
Fortinet FortiClientWindows 后置链接漏洞
Fortinet FortiClientWindows is a Windows-based mobile device security solution provided by the American company Fortinet. When connected to the FortiGate firewall device, this solution offers features such as IPsec and SSL encryption, wide-area network optimization, terminal compliance, and...
CVE-2025-15543
Improper link resolution in USB HTTP access path in VX800v v1.0 allows a crafted USB device to expose root filesystem contents, giving an attacker with physical access read‑only access to system files...
EUVD-2025-93510
Improper link resolution before file access 'link following' for some IntelR Server Configuration Utility software and IntelR Server Firmware Update Utility software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an...
CVE-2025-43726
Dell Alienware Command Center (AWCC) for Windows has a local, low-privilege Elevation of Privileges flaw due to Improper Link Resolution Before File Access (Link Following). Affected are AWCC versions prior to 5.10.2.0. The vulnerability enables a local attacker with low privileges to escalate. T...
CVE-2025-48799
Improper link resolution before file access 'link following' in Windows Update Service allows an authorized attacker to elevate privileges locally...
PT-2025-20977 · Microsoft · Pcmanager
Name of the Vulnerable Software and Affected Versions: Microsoft PC Manager affected versions not specified Description: The issue is related to improper link resolution before file access, also known as 'link following', in Microsoft PC Manager. This allows an authorized attacker to elevate...
SonicWall NetExtender Windows Client Multiple Vulnerabilities
1 CVE-2025-23008 - SonicWall NetExtender Improper Privilege Management VulnerabilityAn improper privilege management vulnerability in the SonicWall NetExtender Windows 32 and 64 bit client allows a low privileged attacker to modify configurations. CVSS Score: 7.2 CVSS Vector:...
SonicWALL Connect Tunnel 后置链接漏洞
SonicWALL Connect Tunnel is a remote software from SonicWALL USA. A backlink vulnerability exists in SonicWALL Connect Tunnel version 12.4.3.271 and prior versions, which stems from the presence of an incorrect link resolution before file access vulnerability that could allow a user with standard...
SonicWALL Connect Tunnel 后置链接漏洞
SonicWALL Connect Tunnel is a remote software from SonicWALL USA. A backlink vulnerability exists in SonicWALL Connect Tunnel version 12.4.3.271 and earlier, which stems from the presence of a File Access Before Link Resolution Incorrect vulnerability that allows users with standard privileges to...
Zscaler Client Connector 安全漏洞
Zscaler Client Connector is an application from zscaler. An application that is installed on a device to ensure that Internet traffic and access to an organization's internal applications are secure and in compliance with the organization's policies, even when not on the corporate network. A...
Dell PowerScale OneFS 后置链接漏洞
Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. A backlink vulnerability exists in Dell PowerScale OneFS that stems from incorrect link resolution in isigatherinfo, which can be exploited by an attacker to caus...
PT-2022-6620 · Trend Micro · Trend Micro Apex One +1
Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One and Apex One as a Service affected versions not specified Description: A link following issue in the Trend Micro Apex One and Apex One as a Service agent could allow a local attacker to disclose sensitive information. The...